Warning: Permanently added '[localhost]:20771' (ECDSA) to the list of known hosts. 2025/08/29 12:25:23 fuzzer started 2025/08/29 12:25:24 dialing manager at localhost:43077 syzkaller login: [ 51.345684] cgroup: Unknown subsys name 'net' [ 51.419461] cgroup: Unknown subsys name 'cpuset' [ 51.445002] cgroup: Unknown subsys name 'rlimit' 2025/08/29 12:25:34 syscalls: 2214 2025/08/29 12:25:34 code coverage: enabled 2025/08/29 12:25:34 comparison tracing: enabled 2025/08/29 12:25:34 extra coverage: enabled 2025/08/29 12:25:34 setuid sandbox: enabled 2025/08/29 12:25:34 namespace sandbox: enabled 2025/08/29 12:25:34 Android sandbox: enabled 2025/08/29 12:25:34 fault injection: enabled 2025/08/29 12:25:34 leak checking: enabled 2025/08/29 12:25:34 net packet injection: enabled 2025/08/29 12:25:34 net device setup: enabled 2025/08/29 12:25:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/08/29 12:25:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/08/29 12:25:34 USB emulation: enabled 2025/08/29 12:25:34 hci packet injection: enabled 2025/08/29 12:25:34 wifi device emulation: enabled 2025/08/29 12:25:34 802.15.4 emulation: enabled 2025/08/29 12:25:34 fetching corpus: 0, signal 0/2000 (executing program) 2025/08/29 12:25:34 fetching corpus: 50, signal 24626/28138 (executing program) 2025/08/29 12:25:34 fetching corpus: 100, signal 36276/41205 (executing program) 2025/08/29 12:25:35 fetching corpus: 150, signal 45559/51701 (executing program) 2025/08/29 12:25:35 fetching corpus: 200, signal 51472/58823 (executing program) 2025/08/29 12:25:35 fetching corpus: 250, signal 56038/64546 (executing program) 2025/08/29 12:25:35 fetching corpus: 300, signal 58933/68646 (executing program) 2025/08/29 12:25:35 fetching corpus: 350, signal 62450/73249 (executing program) 2025/08/29 12:25:35 fetching corpus: 400, signal 65004/76940 (executing program) 2025/08/29 12:25:35 fetching corpus: 450, signal 69150/82028 (executing program) 2025/08/29 12:25:35 fetching corpus: 500, signal 72374/86199 (executing program) 2025/08/29 12:25:35 fetching corpus: 550, signal 76463/91042 (executing program) 2025/08/29 12:25:35 fetching corpus: 600, signal 80172/95467 (executing program) 2025/08/29 12:25:35 fetching corpus: 650, signal 82412/98562 (executing program) 2025/08/29 12:25:36 fetching corpus: 700, signal 84042/101111 (executing program) 2025/08/29 12:25:36 fetching corpus: 750, signal 85706/103622 (executing program) 2025/08/29 12:25:36 fetching corpus: 800, signal 88436/106974 (executing program) 2025/08/29 12:25:36 fetching corpus: 850, signal 90360/109676 (executing program) 2025/08/29 12:25:36 fetching corpus: 900, signal 92792/112709 (executing program) 2025/08/29 12:25:36 fetching corpus: 950, signal 94164/114862 (executing program) 2025/08/29 12:25:36 fetching corpus: 1000, signal 95911/117258 (executing program) 2025/08/29 12:25:36 fetching corpus: 1050, signal 96987/119082 (executing program) 2025/08/29 12:25:36 fetching corpus: 1100, signal 98826/121497 (executing program) 2025/08/29 12:25:36 fetching corpus: 1150, signal 100822/123994 (executing program) 2025/08/29 12:25:37 fetching corpus: 1200, signal 101989/125831 (executing program) 2025/08/29 12:25:37 fetching corpus: 1250, signal 103648/127983 (executing program) 2025/08/29 12:25:37 fetching corpus: 1300, signal 104788/129730 (executing program) 2025/08/29 12:25:37 fetching corpus: 1350, signal 106554/131944 (executing program) 2025/08/29 12:25:37 fetching corpus: 1400, signal 108189/134028 (executing program) 2025/08/29 12:25:37 fetching corpus: 1450, signal 110108/136226 (executing program) 2025/08/29 12:25:37 fetching corpus: 1500, signal 111180/137784 (executing program) 2025/08/29 12:25:37 fetching corpus: 1550, signal 112712/139725 (executing program) 2025/08/29 12:25:38 fetching corpus: 1600, signal 114832/141995 (executing program) 2025/08/29 12:25:38 fetching corpus: 1650, signal 116837/144185 (executing program) 2025/08/29 12:25:38 fetching corpus: 1700, signal 117708/145600 (executing program) 2025/08/29 12:25:38 fetching corpus: 1750, signal 118297/146758 (executing program) 2025/08/29 12:25:38 fetching corpus: 1800, signal 119310/148133 (executing program) 2025/08/29 12:25:38 fetching corpus: 1850, signal 120484/149690 (executing program) 2025/08/29 12:25:38 fetching corpus: 1900, signal 121248/150942 (executing program) 2025/08/29 12:25:38 fetching corpus: 1950, signal 122510/152519 (executing program) 2025/08/29 12:25:38 fetching corpus: 2000, signal 123273/153715 (executing program) 2025/08/29 12:25:38 fetching corpus: 2050, signal 124756/155300 (executing program) 2025/08/29 12:25:38 fetching corpus: 2100, signal 127391/157517 (executing program) 2025/08/29 12:25:38 fetching corpus: 2150, signal 128635/158863 (executing program) 2025/08/29 12:25:39 fetching corpus: 2200, signal 129112/159775 (executing program) 2025/08/29 12:25:39 fetching corpus: 2250, signal 129875/160851 (executing program) 2025/08/29 12:25:39 fetching corpus: 2300, signal 130542/161845 (executing program) 2025/08/29 12:25:39 fetching corpus: 2350, signal 131868/163275 (executing program) 2025/08/29 12:25:39 fetching corpus: 2400, signal 133052/164507 (executing program) 2025/08/29 12:25:39 fetching corpus: 2450, signal 133654/165398 (executing program) 2025/08/29 12:25:39 fetching corpus: 2500, signal 134242/166332 (executing program) 2025/08/29 12:25:39 fetching corpus: 2550, signal 135177/167409 (executing program) 2025/08/29 12:25:39 fetching corpus: 2600, signal 135838/168347 (executing program) 2025/08/29 12:25:39 fetching corpus: 2650, signal 136885/169390 (executing program) 2025/08/29 12:25:39 fetching corpus: 2700, signal 137635/170322 (executing program) 2025/08/29 12:25:40 fetching corpus: 2750, signal 138473/171286 (executing program) 2025/08/29 12:25:40 fetching corpus: 2800, signal 139270/172181 (executing program) 2025/08/29 12:25:40 fetching corpus: 2850, signal 140035/173136 (executing program) 2025/08/29 12:25:40 fetching corpus: 2900, signal 141010/174090 (executing program) 2025/08/29 12:25:40 fetching corpus: 2950, signal 141680/174909 (executing program) 2025/08/29 12:25:40 fetching corpus: 3000, signal 142408/175730 (executing program) 2025/08/29 12:25:40 fetching corpus: 3050, signal 143139/176554 (executing program) 2025/08/29 12:25:40 fetching corpus: 3100, signal 144048/177376 (executing program) 2025/08/29 12:25:40 fetching corpus: 3150, signal 144807/178196 (executing program) 2025/08/29 12:25:40 fetching corpus: 3200, signal 145392/178971 (executing program) 2025/08/29 12:25:40 fetching corpus: 3250, signal 145982/179712 (executing program) 2025/08/29 12:25:41 fetching corpus: 3300, signal 146593/180406 (executing program) 2025/08/29 12:25:41 fetching corpus: 3350, signal 147325/181336 (executing program) 2025/08/29 12:25:41 fetching corpus: 3400, signal 148129/182090 (executing program) 2025/08/29 12:25:41 fetching corpus: 3450, signal 148466/182690 (executing program) 2025/08/29 12:25:41 fetching corpus: 3500, signal 149085/183366 (executing program) 2025/08/29 12:25:41 fetching corpus: 3550, signal 149735/184131 (executing program) 2025/08/29 12:25:41 fetching corpus: 3600, signal 150282/184738 (executing program) 2025/08/29 12:25:41 fetching corpus: 3650, signal 151114/185446 (executing program) 2025/08/29 12:25:41 fetching corpus: 3700, signal 151558/186030 (executing program) 2025/08/29 12:25:41 fetching corpus: 3750, signal 152202/186641 (executing program) 2025/08/29 12:25:42 fetching corpus: 3800, signal 152932/187270 (executing program) 2025/08/29 12:25:42 fetching corpus: 3850, signal 153445/187829 (executing program) 2025/08/29 12:25:42 fetching corpus: 3900, signal 153968/188381 (executing program) 2025/08/29 12:25:42 fetching corpus: 3950, signal 154336/188920 (executing program) 2025/08/29 12:25:42 fetching corpus: 4000, signal 155078/189486 (executing program) 2025/08/29 12:25:42 fetching corpus: 4050, signal 155506/189979 (executing program) 2025/08/29 12:25:42 fetching corpus: 4100, signal 156093/190509 (executing program) 2025/08/29 12:25:42 fetching corpus: 4150, signal 156586/190992 (executing program) 2025/08/29 12:25:42 fetching corpus: 4200, signal 157115/191474 (executing program) 2025/08/29 12:25:42 fetching corpus: 4250, signal 157541/191927 (executing program) 2025/08/29 12:25:43 fetching corpus: 4300, signal 157919/192337 (executing program) 2025/08/29 12:25:43 fetching corpus: 4350, signal 158377/192811 (executing program) 2025/08/29 12:25:43 fetching corpus: 4400, signal 159095/193281 (executing program) 2025/08/29 12:25:43 fetching corpus: 4450, signal 159705/193762 (executing program) 2025/08/29 12:25:43 fetching corpus: 4500, signal 160206/194158 (executing program) 2025/08/29 12:25:43 fetching corpus: 4550, signal 160585/194519 (executing program) 2025/08/29 12:25:43 fetching corpus: 4600, signal 161068/194921 (executing program) 2025/08/29 12:25:43 fetching corpus: 4650, signal 161561/195349 (executing program) 2025/08/29 12:25:43 fetching corpus: 4700, signal 162103/195733 (executing program) 2025/08/29 12:25:43 fetching corpus: 4750, signal 162529/195950 (executing program) 2025/08/29 12:25:43 fetching corpus: 4800, signal 162886/195959 (executing program) 2025/08/29 12:25:44 fetching corpus: 4850, signal 163222/195967 (executing program) 2025/08/29 12:25:44 fetching corpus: 4900, signal 163577/195981 (executing program) 2025/08/29 12:25:44 fetching corpus: 4950, signal 164023/195984 (executing program) 2025/08/29 12:25:44 fetching corpus: 5000, signal 164370/195989 (executing program) 2025/08/29 12:25:44 fetching corpus: 5050, signal 164918/195990 (executing program) 2025/08/29 12:25:44 fetching corpus: 5100, signal 165400/196152 (executing program) 2025/08/29 12:25:44 fetching corpus: 5150, signal 165798/196162 (executing program) 2025/08/29 12:25:44 fetching corpus: 5200, signal 166179/196178 (executing program) 2025/08/29 12:25:44 fetching corpus: 5250, signal 166441/196194 (executing program) 2025/08/29 12:25:44 fetching corpus: 5300, signal 166764/196202 (executing program) 2025/08/29 12:25:44 fetching corpus: 5350, signal 167144/196218 (executing program) 2025/08/29 12:25:44 fetching corpus: 5400, signal 167465/196258 (executing program) 2025/08/29 12:25:45 fetching corpus: 5450, signal 167966/196310 (executing program) 2025/08/29 12:25:45 fetching corpus: 5500, signal 168510/196439 (executing program) 2025/08/29 12:25:45 fetching corpus: 5550, signal 168973/196458 (executing program) 2025/08/29 12:25:45 fetching corpus: 5600, signal 169322/196530 (executing program) 2025/08/29 12:25:45 fetching corpus: 5650, signal 169706/196530 (executing program) 2025/08/29 12:25:45 fetching corpus: 5700, signal 170082/196539 (executing program) 2025/08/29 12:25:45 fetching corpus: 5750, signal 170472/196550 (executing program) 2025/08/29 12:25:45 fetching corpus: 5800, signal 170795/196572 (executing program) 2025/08/29 12:25:45 fetching corpus: 5850, signal 171106/196578 (executing program) 2025/08/29 12:25:45 fetching corpus: 5900, signal 171460/196607 (executing program) 2025/08/29 12:25:45 fetching corpus: 5950, signal 171735/196615 (executing program) 2025/08/29 12:25:45 fetching corpus: 6000, signal 172452/196628 (executing program) 2025/08/29 12:25:46 fetching corpus: 6050, signal 172749/196638 (executing program) 2025/08/29 12:25:46 fetching corpus: 6100, signal 173033/196643 (executing program) 2025/08/29 12:25:46 fetching corpus: 6150, signal 173369/196664 (executing program) 2025/08/29 12:25:46 fetching corpus: 6200, signal 173711/196702 (executing program) 2025/08/29 12:25:46 fetching corpus: 6250, signal 173978/196715 (executing program) 2025/08/29 12:25:46 fetching corpus: 6300, signal 174234/196753 (executing program) 2025/08/29 12:25:46 fetching corpus: 6350, signal 174665/196763 (executing program) 2025/08/29 12:25:46 fetching corpus: 6400, signal 174983/196772 (executing program) 2025/08/29 12:25:46 fetching corpus: 6450, signal 175483/196776 (executing program) 2025/08/29 12:25:46 fetching corpus: 6500, signal 175819/196781 (executing program) 2025/08/29 12:25:46 fetching corpus: 6550, signal 176282/196785 (executing program) 2025/08/29 12:25:46 fetching corpus: 6600, signal 176578/196787 (executing program) 2025/08/29 12:25:46 fetching corpus: 6650, signal 176996/196796 (executing program) 2025/08/29 12:25:46 fetching corpus: 6700, signal 177498/196821 (executing program) 2025/08/29 12:25:47 fetching corpus: 6750, signal 177791/196829 (executing program) 2025/08/29 12:25:47 fetching corpus: 6800, signal 178028/196837 (executing program) 2025/08/29 12:25:47 fetching corpus: 6850, signal 178414/196843 (executing program) 2025/08/29 12:25:47 fetching corpus: 6900, signal 178748/196859 (executing program) 2025/08/29 12:25:47 fetching corpus: 6950, signal 179029/196879 (executing program) 2025/08/29 12:25:47 fetching corpus: 7000, signal 179824/196882 (executing program) 2025/08/29 12:25:47 fetching corpus: 7050, signal 180091/196926 (executing program) 2025/08/29 12:25:47 fetching corpus: 7100, signal 180349/196931 (executing program) 2025/08/29 12:25:47 fetching corpus: 7150, signal 180588/196933 (executing program) 2025/08/29 12:25:47 fetching corpus: 7200, signal 180981/196935 (executing program) 2025/08/29 12:25:48 fetching corpus: 7250, signal 181256/196936 (executing program) 2025/08/29 12:25:48 fetching corpus: 7300, signal 181706/196936 (executing program) 2025/08/29 12:25:48 fetching corpus: 7350, signal 181938/196939 (executing program) 2025/08/29 12:25:48 fetching corpus: 7400, signal 182211/196948 (executing program) 2025/08/29 12:25:48 fetching corpus: 7450, signal 182498/196986 (executing program) 2025/08/29 12:25:48 fetching corpus: 7500, signal 182749/196989 (executing program) 2025/08/29 12:25:48 fetching corpus: 7550, signal 183204/197012 (executing program) 2025/08/29 12:25:48 fetching corpus: 7600, signal 183467/197013 (executing program) 2025/08/29 12:25:48 fetching corpus: 7650, signal 183777/197019 (executing program) 2025/08/29 12:25:48 fetching corpus: 7700, signal 184136/197029 (executing program) 2025/08/29 12:25:49 fetching corpus: 7750, signal 184485/197047 (executing program) 2025/08/29 12:25:49 fetching corpus: 7800, signal 184820/197055 (executing program) 2025/08/29 12:25:49 fetching corpus: 7850, signal 185030/197060 (executing program) 2025/08/29 12:25:49 fetching corpus: 7900, signal 185336/197067 (executing program) 2025/08/29 12:25:49 fetching corpus: 7950, signal 185642/197067 (executing program) 2025/08/29 12:25:49 fetching corpus: 8000, signal 185957/197071 (executing program) 2025/08/29 12:25:49 fetching corpus: 8050, signal 186245/197101 (executing program) 2025/08/29 12:25:49 fetching corpus: 8100, signal 186533/197108 (executing program) 2025/08/29 12:25:49 fetching corpus: 8150, signal 186737/197113 (executing program) 2025/08/29 12:25:49 fetching corpus: 8200, signal 186928/197128 (executing program) 2025/08/29 12:25:50 fetching corpus: 8250, signal 187177/197132 (executing program) 2025/08/29 12:25:50 fetching corpus: 8300, signal 187440/197133 (executing program) 2025/08/29 12:25:50 fetching corpus: 8350, signal 187640/197144 (executing program) 2025/08/29 12:25:50 fetching corpus: 8400, signal 187852/197153 (executing program) 2025/08/29 12:25:50 fetching corpus: 8450, signal 188146/197160 (executing program) 2025/08/29 12:25:50 fetching corpus: 8500, signal 188399/197163 (executing program) 2025/08/29 12:25:50 fetching corpus: 8550, signal 188674/197169 (executing program) 2025/08/29 12:25:50 fetching corpus: 8600, signal 188894/197174 (executing program) 2025/08/29 12:25:50 fetching corpus: 8650, signal 189214/197174 (executing program) 2025/08/29 12:25:50 fetching corpus: 8700, signal 189440/197177 (executing program) 2025/08/29 12:25:50 fetching corpus: 8750, signal 189712/197186 (executing program) 2025/08/29 12:25:51 fetching corpus: 8800, signal 190034/197201 (executing program) 2025/08/29 12:25:51 fetching corpus: 8850, signal 190288/197209 (executing program) 2025/08/29 12:25:51 fetching corpus: 8900, signal 190550/197221 (executing program) 2025/08/29 12:25:51 fetching corpus: 8950, signal 190844/197222 (executing program) 2025/08/29 12:25:51 fetching corpus: 9000, signal 191021/197227 (executing program) 2025/08/29 12:25:51 fetching corpus: 9050, signal 191288/197294 (executing program) 2025/08/29 12:25:51 fetching corpus: 9100, signal 191542/197343 (executing program) 2025/08/29 12:25:51 fetching corpus: 9150, signal 191794/197372 (executing program) 2025/08/29 12:25:51 fetching corpus: 9200, signal 191985/197382 (executing program) 2025/08/29 12:25:51 fetching corpus: 9250, signal 192168/197385 (executing program) 2025/08/29 12:25:51 fetching corpus: 9300, signal 192426/197394 (executing program) 2025/08/29 12:25:52 fetching corpus: 9350, signal 192683/197401 (executing program) 2025/08/29 12:25:52 fetching corpus: 9400, signal 192904/197401 (executing program) 2025/08/29 12:25:52 fetching corpus: 9450, signal 193163/197404 (executing program) 2025/08/29 12:25:52 fetching corpus: 9500, signal 193446/197429 (executing program) 2025/08/29 12:25:52 fetching corpus: 9524, signal 193623/197429 (executing program) 2025/08/29 12:25:52 fetching corpus: 9524, signal 193623/197429 (executing program) 2025/08/29 12:25:54 starting 8 fuzzer processes 12:25:54 executing program 0: mincore(&(0x7f0000fea000/0x14000)=nil, 0x14000, 0xffffffffffffffff) 12:25:54 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0x5) setuid(r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x100, 0x0, @empty}, 0x1c) 12:25:54 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SETVESABLANK(r0, 0x545d, 0x0) 12:25:54 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSLCKTRMIOS(r0, 0x4b4c, &(0x7f00000000c0)) 12:25:54 executing program 4: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='environ\x00') pread64(r0, 0x0, 0x0, 0x0) 12:25:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000003c0), r0) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000005c0)={0x0, 0x9000000, &(0x7f0000000580)={&(0x7f0000000400)={0x3c, r1, 0xf1b5a43ca6b9a97, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xe, 0x1, 'NLBL_MGMT\x00'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}]}, 0x3c}}, 0x0) 12:25:54 executing program 5: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setuid(0x0) creat(&(0x7f0000000240)='./file1/file0\x00', 0x0) rename(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000200)='./file0\x00') [ 81.709864] audit: type=1400 audit(1756470354.706:7): avc: denied { execmem } for pid=272 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:25:54 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) [ 82.910753] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.914635] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.917131] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.921631] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.925814] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.973198] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.979644] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.982140] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.989246] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.009072] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 83.016925] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 83.018301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.020662] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.028954] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.033776] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.040619] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.042344] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 83.047172] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 83.058729] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.062648] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.068574] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 83.080926] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 83.082654] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 83.084248] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 83.086401] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.090550] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.091651] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 83.093521] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 83.094756] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.096825] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 83.099311] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 83.103020] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 83.109565] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.110933] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.123039] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 83.125877] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 83.128708] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.134836] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 83.150658] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.151908] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 85.007602] Bluetooth: hci0: command tx timeout [ 85.069549] Bluetooth: hci1: command tx timeout [ 85.133529] Bluetooth: hci2: command tx timeout [ 85.134210] Bluetooth: hci3: command tx timeout [ 85.197658] Bluetooth: hci5: command tx timeout [ 85.197887] Bluetooth: hci6: command tx timeout [ 85.198301] Bluetooth: hci7: command tx timeout [ 85.261552] Bluetooth: hci4: command tx timeout [ 87.053581] Bluetooth: hci0: command tx timeout [ 87.117566] Bluetooth: hci1: command tx timeout [ 87.182452] Bluetooth: hci3: command tx timeout [ 87.182500] Bluetooth: hci2: command tx timeout [ 87.245498] Bluetooth: hci7: command tx timeout [ 87.246363] Bluetooth: hci6: command tx timeout [ 87.246813] Bluetooth: hci5: command tx timeout [ 87.309557] Bluetooth: hci4: command tx timeout [ 89.101476] Bluetooth: hci0: command tx timeout [ 89.165590] Bluetooth: hci1: command tx timeout [ 89.229531] Bluetooth: hci3: command tx timeout [ 89.229620] Bluetooth: hci2: command tx timeout [ 89.294676] Bluetooth: hci5: command tx timeout [ 89.295081] Bluetooth: hci6: command tx timeout [ 89.295619] Bluetooth: hci7: command tx timeout [ 89.357494] Bluetooth: hci4: command tx timeout [ 91.149577] Bluetooth: hci0: command tx timeout [ 91.213593] Bluetooth: hci1: command tx timeout [ 91.278451] Bluetooth: hci3: command tx timeout [ 91.278853] Bluetooth: hci2: command tx timeout [ 91.343472] Bluetooth: hci6: command tx timeout [ 91.343931] Bluetooth: hci7: command tx timeout [ 91.344316] Bluetooth: hci5: command tx timeout [ 91.405485] Bluetooth: hci4: command tx timeout [ 118.836574] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.837224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.036641] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.037234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.590729] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.591314] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.711473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.712071] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.823732] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.824299] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.989218] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 119.990346] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.119480] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.120069] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.234631] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.235184] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.420835] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.421741] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.505515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.506104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.600533] audit: type=1400 audit(1756470393.595:8): avc: denied { open } for pid=3837 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.600621] audit: type=1400 audit(1756470393.595:9): avc: denied { kernel } for pid=3837 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.084694] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.085286] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.209956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.210996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.235451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.236019] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.288249] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.288861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.485253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.486268] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.538152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.538922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 12:26:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) 12:26:34 executing program 0: mincore(&(0x7f0000fea000/0x14000)=nil, 0x14000, 0xffffffffffffffff) 12:26:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) 12:26:34 executing program 1: r0 = socket$inet(0x2, 0x3, 0x26) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000080)=0x8000, 0x4) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x9, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 12:26:34 executing program 5: syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}, @redirect={0x5, 0x0, 0x0, @multicast1, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @broadcast=0x20020000}}}}}}, 0x0) 12:26:34 executing program 4: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x44000) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x3, &(0x7f0000000880)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000001280)="ed", 0x1}, 0x0, 0x0]) 12:26:34 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$setsig(r0, 0xa, 0x0) fcntl$setown(r0, 0xa, 0x0) 12:26:34 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSLCKTRMIOS(r0, 0x4b4c, &(0x7f00000000c0)) [ 121.694859] loop2: detected capacity change from 0 to 6 [ 121.703779] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 121.716237] FAT-fs (loop2): bogus number of reserved sectors [ 121.716941] FAT-fs (loop2): Can't find a valid FAT filesystem 12:26:34 executing program 0: mincore(&(0x7f0000fea000/0x14000)=nil, 0x14000, 0xffffffffffffffff) 12:26:34 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000002c0)="eb3c906d6b66732e66617400028001000270000004f801", 0x17}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e780325132510000e780325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202010", 0x4c, 0x600}], 0x0, &(0x7f0000010d00)=ANY=[]) futimesat(r0, &(0x7f0000000040)='./file0\x00', 0x0) mount$bind(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20, 0x0) 12:26:34 executing program 1: r0 = socket$inet(0x2, 0x3, 0x26) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000080)=0x8000, 0x4) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x9, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 12:26:34 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSLCKTRMIOS(r0, 0x4b4c, &(0x7f00000000c0)) 12:26:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) 12:26:34 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 12:26:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) [ 121.817102] loop3: detected capacity change from 0 to 6 [ 121.836189] kmemleak: Found object by alias at 0x607f1a63917c [ 121.836205] CPU: 0 UID: 0 PID: 3922 Comm: syz-executor.0 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.836223] Tainted: [W]=WARN [ 121.836227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.836234] Call Trace: [ 121.836238] [ 121.836243] dump_stack_lvl+0xca/0x120 [ 121.836270] __lookup_object+0x94/0xb0 [ 121.836288] delete_object_full+0x27/0x70 [ 121.836304] free_percpu+0x30/0x1160 [ 121.836321] ? arch_uprobe_clear_state+0x16/0x140 [ 121.836341] futex_hash_free+0x38/0xc0 [ 121.836355] mmput+0x2d3/0x390 [ 121.836374] do_exit+0x79d/0x2970 [ 121.836388] ? signal_wake_up_state+0x85/0x120 [ 121.836411] ? zap_other_threads+0x2b9/0x3a0 [ 121.836426] ? __pfx_do_exit+0x10/0x10 [ 121.836439] ? do_group_exit+0x1c3/0x2a0 [ 121.836452] ? lock_release+0xc8/0x290 [ 121.836470] do_group_exit+0xd3/0x2a0 [ 121.836484] __x64_sys_exit_group+0x3e/0x50 [ 121.836498] x64_sys_call+0x18c5/0x18d0 [ 121.836513] do_syscall_64+0xbf/0x360 [ 121.836525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.836537] RIP: 0033:0x7f663dbb4b19 [ 121.836546] Code: Unable to access opcode bytes at 0x7f663dbb4aef. [ 121.836551] RSP: 002b:00007fffa4924668 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 121.836562] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f663dbb4b19 [ 121.836570] RDX: 00007f663db6772b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 121.836577] RBP: 0000000000000000 R08: 0000001b2cf2001c R09: 0000000000000000 [ 121.836585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.836591] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fffa4924750 [ 121.836607] [ 121.836611] kmemleak: Object (percpu) 0x607f1a639178 (size 8): [ 121.836617] kmemleak: comm "syz-executor.3", pid 3925, jiffies 4294788490 [ 121.836624] kmemleak: min_count = 1 [ 121.836628] kmemleak: count = 0 [ 121.836632] kmemleak: flags = 0x21 [ 121.836636] kmemleak: checksum = 0 [ 121.836640] kmemleak: backtrace: [ 121.836643] pcpu_alloc_noprof+0x87a/0x1170 [ 121.836658] __alloc_workqueue+0x74b/0x1820 [ 121.836676] alloc_workqueue_noprof+0xc7/0x200 [ 121.836685] loop_configure+0xf73/0x1590 [ 121.836699] lo_ioctl+0x66d/0x1c70 [ 121.836712] blkdev_ioctl+0x27c/0x6c0 [ 121.836729] __x64_sys_ioctl+0x18f/0x210 [ 121.836745] do_syscall_64+0xbf/0x360 [ 121.836753] entry_SYSCALL_64_after_hwframe+0x77/0x7f 12:26:34 executing program 4: r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x44000) io_setup(0xfff, &(0x7f0000000040)=0x0) io_submit(r1, 0x3, &(0x7f0000000880)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000001280)="ed", 0x1}, 0x0, 0x0]) 12:26:34 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) 12:26:34 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 12:26:34 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSLCKTRMIOS(r0, 0x4b4c, &(0x7f00000000c0)) [ 121.869551] FAT-fs (loop3): Directory bread(block 6) failed [ 121.870022] FAT-fs (loop3): Directory bread(block 7) failed [ 121.870918] FAT-fs (loop3): Directory bread(block 8) failed [ 121.871356] FAT-fs (loop3): Directory bread(block 9) failed [ 121.872332] kmemleak: Found object by alias at 0x607f1a6399d4 [ 121.872350] CPU: 1 UID: 0 PID: 3923 Comm: syz-executor.1 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.872368] Tainted: [W]=WARN [ 121.872372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.872380] Call Trace: [ 121.872384] [ 121.872389] dump_stack_lvl+0xca/0x120 [ 121.872421] __lookup_object+0x94/0xb0 [ 121.872438] delete_object_full+0x27/0x70 [ 121.872455] free_percpu+0x30/0x1160 [ 121.872471] ? arch_uprobe_clear_state+0x16/0x140 [ 121.872491] futex_hash_free+0x38/0xc0 [ 121.872505] mmput+0x2d3/0x390 [ 121.872524] do_exit+0x79d/0x2970 [ 121.872538] ? signal_wake_up_state+0x85/0x120 [ 121.872554] ? zap_other_threads+0x2b9/0x3a0 [ 121.872570] ? __pfx_do_exit+0x10/0x10 [ 121.872582] ? do_group_exit+0x1c3/0x2a0 [ 121.872595] ? lock_release+0xc8/0x290 [ 121.872612] do_group_exit+0xd3/0x2a0 [ 121.872627] __x64_sys_exit_group+0x3e/0x50 [ 121.872641] x64_sys_call+0x18c5/0x18d0 [ 121.872656] do_syscall_64+0xbf/0x360 [ 121.872671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.872683] RIP: 0033:0x7f7dfd31bb19 [ 121.872693] Code: Unable to access opcode bytes at 0x7f7dfd31baef. [ 121.872699] RSP: 002b:00007fff0b001128 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 121.872710] RAX: ffffffffffffffda RBX: 000000000000001e RCX: 00007f7dfd31bb19 [ 121.872718] RDX: 00007f7dfd2ce72b RSI: ffffffffffffffbc RDI: 0000000000000000 [ 121.872725] RBP: 0000000000000000 R08: 0000001b2cd2313c R09: 0000000000000000 [ 121.872732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 121.872739] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff0b001210 [ 121.872754] [ 121.872758] kmemleak: Object (percpu) 0x607f1a6399d0 (size 16): [ 121.872765] kmemleak: comm "syz-executor.4", pid 282, jiffies 4294788542 [ 121.872772] kmemleak: min_count = 1 [ 121.872776] kmemleak: count = 0 [ 121.872780] kmemleak: flags = 0x21 [ 121.872784] kmemleak: checksum = 0 [ 121.872787] kmemleak: backtrace: [ 121.872791] pcpu_alloc_noprof+0x87a/0x1170 [ 121.872806] mm_init+0x99b/0x1170 [ 121.872814] copy_process+0x3ab7/0x73c0 [ 121.872824] kernel_clone+0xea/0x7f0 [ 121.872833] __do_sys_clone+0xce/0x120 [ 121.872843] do_syscall_64+0xbf/0x360 [ 121.872851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.874646] kmemleak: Cannot insert 0x607f1a63917c into the object search tree (overlaps existing) [ 121.874659] CPU: 0 UID: 0 PID: 3925 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.874677] Tainted: [W]=WARN [ 121.874681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.874689] Call Trace: [ 121.874693] [ 121.874697] dump_stack_lvl+0xca/0x120 [ 121.874718] __link_object+0x190/0x210 [ 121.874735] __create_object+0x48/0x80 [ 121.874753] pcpu_alloc_noprof+0x87a/0x1170 [ 121.874776] __percpu_counter_init_many+0x44/0x360 [ 121.874795] fprop_local_init_percpu+0x2b/0xb0 [ 121.874814] wb_get_create+0x287/0x1120 [ 121.874829] ? do_raw_spin_lock+0x123/0x260 [ 121.874845] ? I_BDEV+0xd/0x20 [ 121.874864] __inode_attach_wb+0x159/0xc70 [ 121.874882] ? I_BDEV+0xd/0x20 [ 121.874899] __folio_mark_dirty+0x908/0xcd0 [ 121.874915] ? bdev_getblk+0x84/0xf0 [ 121.874930] mark_buffer_dirty+0x316/0x3a0 [ 121.874949] fat_set_state+0x227/0x360 [ 121.874968] fat_fill_super+0x2669/0x3fd0 [ 121.874991] ? __pfx_fat_fill_super+0x10/0x10 [ 121.875011] ? __pfx_snprintf+0x10/0x10 [ 121.875031] ? find_held_lock+0x2b/0x80 [ 121.875050] ? set_blocksize+0x1b4/0x470 [ 121.875060] ? lock_release+0xc8/0x290 [ 121.875075] ? sb_set_blocksize+0x177/0x1c0 [ 121.875087] ? setup_bdev_super+0x31f/0x6e0 [ 121.875108] get_tree_bdev_flags+0x38a/0x620 [ 121.875120] ? __pfx_vfat_fill_super+0x10/0x10 [ 121.875133] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 121.875145] ? cap_capable+0xdb/0x3b0 [ 121.875163] ? security_capable+0x2f/0x90 [ 121.875181] vfs_get_tree+0x93/0x340 [ 121.875198] path_mount+0x132d/0x1dd0 [ 121.875214] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 121.875229] ? __pfx_path_mount+0x10/0x10 [ 121.875242] ? kmem_cache_free+0x2a1/0x540 [ 121.875253] ? putname.part.0+0x11b/0x160 [ 121.875270] ? getname_flags.part.0+0x1c6/0x540 [ 121.875288] ? putname.part.0+0x11b/0x160 [ 121.875306] __x64_sys_mount+0x27b/0x300 [ 121.875320] ? __pfx___x64_sys_mount+0x10/0x10 [ 121.875339] do_syscall_64+0xbf/0x360 [ 121.875350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.875363] RIP: 0033:0x7f888b8c004a [ 121.875372] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.875389] RSP: 002b:00007f8888e33fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 121.875400] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f888b8c004a [ 121.875408] RDX: 0000000020000300 RSI: 0000000020000100 RDI: 00007f8888e34000 [ 121.875416] RBP: 00007f8888e34040 R08: 00007f8888e34040 R09: 0000000020000300 [ 121.875423] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000300 [ 121.875430] R13: 0000000020000100 R14: 00007f8888e34000 R15: 0000000020010d00 [ 121.875447] [ 121.875781] kmemleak: Kernel memory leak detector disabled [ 121.875786] kmemleak: Object (percpu) 0x607f1a639178 (size 8): [ 121.875793] kmemleak: comm "syz-executor.3", pid 3925, jiffies 4294788490 [ 121.875800] kmemleak: min_count = 1 [ 121.875804] kmemleak: count = 0 [ 121.875807] kmemleak: flags = 0x21 [ 121.875811] kmemleak: checksum = 0 [ 121.875815] kmemleak: backtrace: [ 121.875818] pcpu_alloc_noprof+0x87a/0x1170 [ 121.875834] __alloc_workqueue+0x74b/0x1820 [ 121.875851] alloc_workqueue_noprof+0xc7/0x200 [ 121.875861] loop_configure+0xf73/0x1590 [ 121.875875] lo_ioctl+0x66d/0x1c70 [ 121.875888] blkdev_ioctl+0x27c/0x6c0 [ 121.875906] __x64_sys_ioctl+0x18f/0x210 [ 121.875920] do_syscall_64+0xbf/0x360 [ 121.875929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.884546] Oops: general protection fault, probably for non-canonical address 0xdffffc0003a74480: 0000 [#1] SMP KASAN NOPTI [ 121.917222] KASAN: probably user-memory-access in range [0x000000001d3a2400-0x000000001d3a2407] [ 121.917898] CPU: 0 UID: 0 PID: 3925 Comm: syz-executor.3 Tainted: G W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.918850] Tainted: [W]=WARN [ 121.919491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.921208] RIP: 0010:__queue_work+0x202/0x1240 [ 121.922192] Code: 48 8b 6d 00 e8 4f 9e 79 03 31 ff 41 89 c5 89 c6 e8 93 f3 31 00 45 85 ed 0f 85 e1 05 00 00 e8 55 f8 31 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24 [ 121.926209] RSP: 0018:ffff88804655f3c0 EFLAGS: 00010012 [ 121.927114] RAX: 0000000003a74480 RBX: ffff88801ee04f18 RCX: ffffc90006cc0000 [ 121.927674] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005 [ 121.928235] RBP: 000000001d3a2400 R08: 0000000000000001 R09: fffffbfff0f11ef4 [ 121.928777] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 121.929308] R13: 0000000000000001 R14: 0000000000000000 R15: ffff88801ecf9000 [ 121.929863] FS: 00007f8888e34700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 121.930500] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.930962] CR2: 00007fe746adb3a4 CR3: 000000001fbcc000 CR4: 0000000000350ef0 [ 121.931525] Call Trace: [ 121.931732] [ 121.931915] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 121.932294] queue_work_on+0xd0/0xe0 [ 121.932596] loop_queue_rq+0x5c8/0x1180 [ 121.932913] __blk_mq_issue_directly+0xd5/0x260 [ 121.933271] ? __pfx___blk_mq_issue_directly+0x10/0x10 [ 121.933684] ? bdev_count_inflight_rw.part.0+0x5f/0x380 [ 121.934084] blk_mq_request_issue_directly+0x11c/0x1e0 [ 121.934478] blk_mq_issue_direct+0x192/0x640 [ 121.934811] blk_mq_dispatch_queue_requests+0x4b0/0x7c0 [ 121.935206] blk_mq_flush_plug_list+0x1ec/0x5b0 [ 121.935561] ? read_tsc+0x9/0x20 [ 121.935829] ? ktime_get+0x16d/0x270 [ 121.936115] ? trace_block_plug+0x149/0x1b0 [ 121.936449] ? blk_add_rq_to_plug+0x234/0x550 [ 121.936790] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 121.937182] ? blk_mq_submit_bio+0x4fd/0x2220 [ 121.937548] __blk_flush_plug+0x25c/0x460 [ 121.937878] ? __pfx___blk_flush_plug+0x10/0x10 [ 121.938253] ? bio_associate_blkg_from_css+0x4fe/0x1380 [ 121.938681] __submit_bio+0x480/0x5b0 [ 121.938977] ? __pfx___submit_bio+0x10/0x10 [ 121.939301] ? read_tsc+0x9/0x20 [ 121.939566] ? ktime_get+0x16d/0x270 [ 121.939852] submit_bio_noacct_nocheck+0x68e/0xcb0 [ 121.940217] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 121.940624] submit_bio_noacct+0x359/0x1350 [ 121.940945] __sync_dirty_buffer+0x176/0x380 [ 121.941279] fat_set_state+0x22f/0x360 [ 121.941584] fat_fill_super+0x2669/0x3fd0 [ 121.941901] ? __pfx_fat_fill_super+0x10/0x10 [ 121.942242] ? __pfx_snprintf+0x10/0x10 [ 121.942547] ? find_held_lock+0x2b/0x80 [ 121.942856] ? set_blocksize+0x1b4/0x470 [ 121.943164] ? lock_release+0xc8/0x290 [ 121.943474] ? sb_set_blocksize+0x177/0x1c0 [ 121.943814] ? setup_bdev_super+0x31f/0x6e0 [ 121.944163] get_tree_bdev_flags+0x38a/0x620 [ 121.944493] ? __pfx_vfat_fill_super+0x10/0x10 [ 121.944834] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 121.945206] ? cap_capable+0xdb/0x3b0 [ 121.945504] ? security_capable+0x2f/0x90 [ 121.945816] vfs_get_tree+0x93/0x340 [ 121.946109] path_mount+0x132d/0x1dd0 [ 121.946397] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 121.946786] ? __pfx_path_mount+0x10/0x10 [ 121.947113] ? kmem_cache_free+0x2a1/0x540 [ 121.947446] ? putname.part.0+0x11b/0x160 [ 121.947779] ? getname_flags.part.0+0x1c6/0x540 [ 121.948153] ? putname.part.0+0x11b/0x160 [ 121.948489] __x64_sys_mount+0x27b/0x300 [ 121.948814] ? __pfx___x64_sys_mount+0x10/0x10 [ 121.949185] do_syscall_64+0xbf/0x360 [ 121.949494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.949878] RIP: 0033:0x7f888b8c004a [ 121.950156] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.951506] RSP: 002b:00007f8888e33fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 121.952086] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f888b8c004a [ 121.952608] RDX: 0000000020000300 RSI: 0000000020000100 RDI: 00007f8888e34000 [ 121.953148] RBP: 00007f8888e34040 R08: 00007f8888e34040 R09: 0000000020000300 [ 121.953722] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000300 [ 121.954283] R13: 0000000020000100 R14: 00007f8888e34000 R15: 0000000020010d00 [ 121.954822] [ 121.955000] Modules linked in: [ 121.955252] ---[ end trace 0000000000000000 ]--- [ 121.955625] RIP: 0010:__queue_work+0x202/0x1240 [ 121.955995] Code: 48 8b 6d 00 e8 4f 9e 79 03 31 ff 41 89 c5 89 c6 e8 93 f3 31 00 45 85 ed 0f 85 e1 05 00 00 e8 55 f8 31 00 48 89 e8 48 c1 e8 03 <42> 80 3c 20 00 0f 85 a0 0e 00 00 4c 8b 75 00 48 89 df 4c 89 34 24 [ 121.957411] RSP: 0018:ffff88804655f3c0 EFLAGS: 00010012 [ 121.957840] RAX: 0000000003a74480 RBX: ffff88801ee04f18 RCX: ffffc90006cc0000 [ 121.958387] RDX: 0000000000040000 RSI: ffffffff8141ef2b RDI: 0000000000000005 [ 121.958916] RBP: 000000001d3a2400 R08: 0000000000000001 R09: fffffbfff0f11ef4 [ 121.959438] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 121.959995] R13: 0000000000000001 R14: 0000000000000000 R15: ffff88801ecf9000 [ 121.960557] FS: 00007f8888e34700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 121.961185] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.961652] CR2: 00007fe746adb3a4 CR3: 000000001fbcc000 CR4: 0000000000350ef0 [ 121.962211] note: syz-executor.3[3925] exited with irqs disabled [ 121.962804] note: syz-executor.3[3925] exited with preempt_count 1 [ 121.963340] ------------[ cut here ]------------ [ 121.963728] WARNING: kernel/exit.c:898 at do_exit+0x1c36/0x2970, CPU#0: syz-executor.3/3925 [ 121.964398] Modules linked in: [ 121.964679] CPU: 0 UID: 0 PID: 3925 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.965640] Tainted: [D]=DIE, [W]=WARN [ 121.965947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.966613] RIP: 0010:do_exit+0x1c36/0x2970 [ 121.966963] Code: 96 0a 00 00 c7 43 18 00 00 00 00 e9 21 e6 ff ff e8 bf a4 38 00 bf 02 24 00 00 e8 f5 ab 0b 00 e9 41 ff ff ff e8 ab a4 38 00 90 <0f> 0b 90 e9 87 e4 ff ff e8 9d a4 38 00 4c 89 e6 bf 05 06 00 00 e8 [ 121.968402] RSP: 0018:ffff88804655fe40 EFLAGS: 00010246 [ 121.968847] RAX: 0000000000040000 RBX: 0000000000000200 RCX: ffffc90006cc0000 [ 121.969429] RDX: 0000000000040000 RSI: ffffffff813b42d5 RDI: ffff88801b9511e8 [ 121.970003] RBP: ffff88801b950000 R08: 0000000000000001 R09: fffffbfff0f11cd8 [ 121.970575] R10: 0000000000000200 R11: 0000000000000001 R12: 000000000000000b [ 121.971131] R13: 0000000000002710 R14: dffffc0003a74480 R15: 0000000000000000 [ 121.971707] FS: 00007f8888e34700(0000) GS:ffff8880e55dd000(0000) knlGS:0000000000000000 [ 121.972345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.972823] CR2: 00007fe746adb3a4 CR3: 000000001fbcc000 CR4: 0000000000350ef0 [ 121.973385] Call Trace: [ 121.973619] [ 121.973805] ? _printk+0xbe/0xf0 [ 121.974084] ? __pfx__printk+0x10/0x10 [ 121.974396] ? __pfx_do_exit+0x10/0x10 [ 121.974735] make_task_dead+0x174/0x3b0 [ 121.975057] ? do_syscall_64+0xbf/0x360 [ 121.975375] rewind_stack_and_make_dead+0x16/0x20 [ 121.975787] RIP: 0033:0x7f888b8c004a [ 121.976086] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.977529] RSP: 002b:00007f8888e33fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 121.978131] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f888b8c004a [ 121.978792] RDX: 0000000020000300 RSI: 0000000020000100 RDI: 00007f8888e34000 [ 121.979483] RBP: 00007f8888e34040 R08: 00007f8888e34040 R09: 0000000020000300 [ 121.980045] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000300 [ 121.980625] R13: 0000000020000100 R14: 00007f8888e34000 R15: 0000000020010d00 [ 121.981198] [ 121.981389] irq event stamp: 1242 [ 121.981686] hardirqs last enabled at (1241): [] ktime_get+0x1c7/0x270 [ 121.982324] hardirqs last disabled at (1242): [] _raw_spin_lock_irq+0x42/0x50 [ 121.983023] softirqs last enabled at (1230): [] handle_softirqs+0x50c/0x770 [ 121.983718] softirqs last disabled at (1215): [] __irq_exit_rcu+0xc4/0x100 [ 121.984387] ---[ end trace 0000000000000000 ]--- [ 121.984773] BUG: sleeping function called from invalid context at ./include/linux/percpu-rwsem.h:51 [ 121.985924] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 3925, name: syz-executor.3 [ 121.986991] preempt_count: 0, expected: 0 [ 121.987327] RCU nest depth: 2, expected: 0 [ 121.987683] INFO: lockdep is turned off. [ 121.988017] CPU: 0 UID: 0 PID: 3925 Comm: syz-executor.3 Tainted: G D W 6.17.0-rc3-next-20250829 #1 PREEMPT(voluntary) [ 121.988035] Tainted: [D]=DIE, [W]=WARN [ 121.988039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 121.988045] Call Trace: [ 121.988049] [ 121.988053] dump_stack_lvl+0xfa/0x120 [ 121.988072] __might_resched+0x2f3/0x510 [ 121.988086] exit_signals+0x25/0x940 [ 121.988104] do_exit+0x2db/0x2970 [ 121.988116] ? _printk+0xbe/0xf0 [ 121.988128] ? __pfx__printk+0x10/0x10 [ 121.988141] ? __pfx_do_exit+0x10/0x10 [ 121.988155] make_task_dead+0x174/0x3b0 [ 121.988168] ? do_syscall_64+0xbf/0x360 [ 121.988178] rewind_stack_and_make_dead+0x16/0x20 [ 121.988193] RIP: 0033:0x7f888b8c004a [ 121.988201] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.988212] RSP: 002b:00007f8888e33fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 121.988223] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f888b8c004a [ 121.988230] RDX: 0000000020000300 RSI: 0000000020000100 RDI: 00007f8888e34000 [ 121.988237] RBP: 00007f8888e34040 R08: 00007f8888e34040 R09: 0000000020000300 [ 121.988245] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000020000300 [ 121.988252] R13: 0000000020000100 R14: 00007f8888e34000 R15: 0000000020010d00 [ 121.988262] 12:26:34 executing program 1: r0 = socket$inet(0x2, 0x3, 0x26) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000080)=0x8000, 0x4) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000000)=0x9, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x10) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 12:26:35 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) VM DIAGNOSIS: 12:26:35 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828e32c5 RDI=ffffffff88724180 RBP=ffffffff88724140 RSP=ffff88804655ecb0 R8 =0000000000000000 R9 =ffffed100172f046 R10=0000000000000020 R11=0000000065646f43 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88724140 R15=ffffffff828e32b0 RIP=ffffffff828e331d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f8888e34700 00000000 00000000 GS =0000 ffff8880e55dd000 00000000 00000000 LDT=0000 fffffe7c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe746adb3a4 CR3=000000001fbcc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ce3de00 RCX=ffffffff816880fc RDX=ffff888015afd280 RSI=ffffffff816880d6 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88801b9df6f8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=1ffff1100d9e6bb1 R12=ffffed100d9c7bc1 R13=ffff88806ce3de08 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816880d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555578b67400 00000000 00000000 GS =0000 ffff8880e56dd000 00000000 00000000 LDT=0000 fffffe3a00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555582fe3c18 CR3=00000000414a0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000000108ddf06e37a102 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000